4 matches found
CVE-2021-41930
Cross site scripting XSS vulnerability in Sourcecodester Online Covid Vaccination Scheduler System v1 by oretnom23, allows attackers to execute arbitrary code via the lid parameter to /scheduler/addSchedule.php...
CVE-2021-41930
Cross site scripting XSS vulnerability in Sourcecodester Online Covid Vaccination Scheduler System v1 by oretnom23, allows attackers to execute arbitrary code via the lid parameter to /scheduler/addSchedule.php...
Sourcecodester Online Covid Vaccination Scheduler Arbitrary File Upload (CVE-2021-36622)
An arbitrary file upload vulnerability exists in Sourcecodester Online Covid Vaccination Scheduler. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2021-36622
Sourcecodester Online Covid Vaccination Scheduler System 1.0 is affected vulnerable to Arbitrary File Upload. The admin panel has an upload function of profile photo accessible at http://localhost/scheduler/admin/?page=user. An attacker could upload a malicious file such as shell.php with the...